Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add hashdd analyzer #284

Merged
merged 11 commits into from
Jul 10, 2018
Merged

Add hashdd analyzer #284

merged 11 commits into from
Jul 10, 2018

Conversation

iosonogio
Copy link
Contributor

This is an analyzer for checking against hashdd (ref. #282 )
It checks for hashes only, and includes report templates.

It may need some tuning - could not get max_tlp to work - it's my first time analyzer, it works on my machine (tested on latest Cortex and Cerana to date), anyway please apologize if I missed anything : I'll be happy to receive feedback, just be nice to me :-)

@3c7 3c7 added this to the 1.11.0 milestone Jun 14, 2018
@jeromeleonard jeromeleonard requested a review from saadkadhi June 26, 2018 11:40
@jeromeleonard jeromeleonard requested a review from 3c7 June 26, 2018 11:45
@3c7
Copy link
Contributor

3c7 commented Jul 3, 2018

Unfortunately, it's currently not possible to create a hashdd.com account and receive an API key. :(

@jeromeleonard jeromeleonard modified the milestones: 1.11.0, 1.12.0 Jul 5, 2018
@iosonogio
Copy link
Contributor Author

iosonogio commented Jul 7, 2018
edited
Loading

Hi @3c7 , you're right :(
So, I split the analyzer into two services:

  • one (Hashdd_Status) only gives a good or bad response and it does NOT require the API key (it is optional);
  • the other (Hashdd_Detail) gives a detailed answer but requires an API key.

Unfortunately hashdd is not allowing registration for new API keys at the moment, but the Status flavour of the analyzer may still be useful.

@3c7 3c7 modified the milestones: 1.12.0, 1.11.0 Jul 10, 2018
@3c7 3c7 merged commit 7e00bd4 into TheHive-Project:develop Jul 10, 2018
3c7 added a commit that referenced this pull request Jul 10, 2018
@3c7
Ref #284: PEP8, short report fix
addc8b6
@3c7
Copy link
Contributor

3c7 commented Jul 10, 2018

Hey @iosonogio, it's merged! Thanks for your contribution.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@saadkadhi saadkadhi Awaiting requested review from saadkadhi

@3c7 3c7 Awaiting requested review from 3c7

Assignees

@3c7 3c7

Labels
scope:analyzer Issue is analyzer related status:needs-review status:pr-submitted
Projects
None yet
Milestone
1.11.0
Development

Successfully merging this pull request may close these issues.
4 participants
@iosonogio @3c7 @saadkadhi @jeromeleonard